gws-sheets
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data exfiltration attempts were identified. The skill follows standard practices for a command-line interface wrapper.
- [COMMAND_EXECUTION]: The skill defines the usage of the
gwsCLI tool to perform spreadsheet operations. This command execution is the primary intended function of the skill and is constrained to the Google Sheets API scope. - [PROMPT_INJECTION]: The skill provides the ability to read content from spreadsheets, which introduces an indirect prompt injection surface. If a spreadsheet contains malicious instructions, the agent might attempt to follow them. This is an inherent risk of data-ingestion tools and is generally managed by the agent's core safety guardrails.
Audit Metadata